U.S. Treasury Expands Cybersecurity Initiative to Digital Asset Firms

This initiative represents a significant shift in how cybersecurity resources are allocated to the growing digital asset sector.

• On April 9, 2026, the U.S. Treasury announced a new cybersecurity information sharing initiative for eligible digital asset firms.
• The program, led by the Office of Cybersecurity and Critical Infrastructure Protection (OCCIP), aims to provide timely threat intelligence to bolster resilience against cyber attacks.
• This move follows recommendations from the 2025 President's Working Group on Digital Asset Markets report and aligns with the principles of the GENIUS Act.

• Cyber threats to the digital asset sector have escalated, with significant incidents such as the $270 million exploit of the Drift Protocol by North Korean hackers.
• The 2025 President's Working Group report highlighted the need for enhanced information sharing to improve cybersecurity across the digital asset landscape.
• This initiative reflects broader U.S. efforts to integrate digital assets into the financial system while promoting operational resilience.

The U.S. Treasury's announcement on April 9, 2026, marks a pivotal moment for the digital asset sector, which has increasingly become a target for cybercriminals. The Office of Cybersecurity and Critical Infrastructure Protection (OCCIP) will now extend its cybersecurity information sharing program to eligible digital asset firms, providing them with the same level of threat intelligence previously reserved for traditional financial institutions. This initiative is particularly relevant given the rising sophistication of cyber threats, exemplified by the recent $270 million exploit of the Drift Protocol, which was orchestrated through a six-month social engineering campaign by North Korean state-affiliated hackers.

The program is designed to enhance the resilience of the digital asset sector amid escalating cyber threats. By sharing timely and actionable threat intelligence, the Treasury aims to equip firms with the necessary tools to defend against potential attacks. This initiative is not just a response to recent incidents; it is a proactive measure to ensure that the digital asset ecosystem can operate securely within the broader financial landscape.

This move aligns with the recommendations from the 2025 President's Working Group on Digital Asset Markets report, which emphasized the importance of information sharing to bolster cybersecurity. The initiative also reflects the principles outlined in the GENIUS Act, which aims to promote operational resilience in the face of evolving threats. By integrating digital asset firms into this cybersecurity framework, the U.S. Treasury is acknowledging the sector's growing importance and the need for robust defenses against cyber threats.

Eligible firms are encouraged to reach out to the OCCIP via email to participate in this initiative, which is offered at no cost. This accessibility is crucial for smaller firms that may lack the resources to develop their own cybersecurity measures. As the digital asset sector continues to grow, the implications of this initiative could be far-reaching, potentially setting a precedent for how cybersecurity is managed across emerging financial technologies.

• Digital asset firms: They will gain access to critical cybersecurity resources that were previously unavailable.
• Cybersecurity professionals: Increased demand for expertise in implementing the shared intelligence.
• Investors: Enhanced security measures may lead to greater confidence in the digital asset market.

• Participation rates: Monitor how many firms engage with the OCCIP program, as this will indicate the initiative's effectiveness.
• Incident reports: Watch for changes in the frequency and severity of cyber incidents in the digital asset sector post-implementation.
• Regulatory developments: Keep an eye on any new regulations or guidelines that may emerge as a result of this initiative.